Can't connect between droplets using public IP

I’m randomly having problems connecting between droplets via the public IP. I can connect to all droplets from my local machine (ping, SSH, etc) but between SOME droplets I cannot connect when using the public IP. Private IP seems unaffected:

[root@docker-2 ~]# ping
PING ( 56(84) bytes of data.
From icmp_seq=1 Destination Host Unreachable

( is the public IP for another node, which I can ping and SSH to from my local machine directly using this IP)

But I can ping the same machine using it’s private IP:

[root@docker-2 ~]# ping
PING ( 56(84) bytes of data.
64 bytes from icmp_seq=1 ttl=64 time=1.72 ms

( is the private IP of

This droplet is able to ping other servers over the internet, e.g.

[root@docker-2 ~]# ping
PING ( 56(84) bytes of data.
64 bytes from icmp_seq=1 ttl=60 time=0.922 ms

There are no DO firewalls applied to any servers. All servers are Centos 7 with no firewalld and no custom networking rules applied, aside from those set up by Docker.

This seems to be random, since if I kill the droplet and reconfigure it, it sometimes starts to work. All droplets are configured by ansible and should be identical, yet some exhibit this problem and some do not.

Here’s a tracepath result from the same droplet, showing first another droplet I can’t reach and 2nd a droplet that I can reach. All 3 are in the same datacenter and all configured identically:

[root@docker-2 ~]# tracepath
1?: [LOCALHOST] pmtu 1500
1: 5.782ms 
1: 8.442ms 
2: 0.553ms 
3: no reply
4: no reply
5: no reply
[root@docker-2 ~]# tracepath
1?: [LOCALHOST] pmtu 1500
1: 17.165ms 
1: 3.751ms 
2: 0.519ms 
3: 0.432ms 
4: 0.835ms reached
Resume: pmtu 1500 hops 4 back 4

Please help. I’m new to DO and surprised how long it takes to get a support ticket answered so I’m trying here.

Show comments

Submit an answer

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Want to learn more? Join the DigitalOcean Community!

Join our DigitalOcean community of over a million developers for free! Get help and share knowledge in Q&A, subscribe to topics of interest, and get courses and tools that will help you grow as a developer and scale your project or business.

Yes, you can connect between droplets using the public IP. the connection(s) I do believe count towards your bandwidth.

I would suggest enabling private networking so that you can connect between dropets. Be aware the droplets need to be in the same region to take advantage of private networking